8 matches found
RockyLinux 8 : freerdp (RLSA-2023:2851)
The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:2851 advisory. freerdp: clients using /parallel command line switch might read uninitialized data CVE-2022-39282 freerdp: clients using the /video command line switch...
EUVD-2012-4061
Malware in sbrugna...
freerdp security update
2:2.2.0-10 - Fix 'implicit declaration of function' errors 2136153, 2145139 - 2:2.2.0-9 - CVE-2022-39282: Fix length checks in parallel driver 2136151 - CVE-2022-39283: Add missing length check in video channel 2136153 - CVE-2022-39316, CVE-2022-39317: Add missing length checks in zgfx 2145139 -...
SUSE-SU-2022:3984-1 Security update for freerdp
This update for freerdp fixes the following issues: - CVE-2022-39282: Fix to init data read by /parallel command line switch. bsc1204258 - CVE-2022-39283: Fix to prevent video channel from reading uninitialized data. bsc1204257...
freerdp: Integer overflow in VIDEO channel
In FreeRDP less than or equal to 2.0.0, an Integer Overflow to Buffer Overflow exists. When using /video redirection, a manipulated server can instruct the client to allocate a buffer with a smaller size than requested due to an integer overflow in size calculation. With later messages, the serve...
freerdp: Integer overflow in VIDEO channel
In FreeRDP less than or equal to 2.0.0, an Integer Overflow to Buffer Overflow exists. When using /video redirection, a manipulated server can instruct the client to allocate a buffer with a smaller size than requested due to an integer overflow in size calculation. With later messages, the serve...
Hacking Cable TV Networks to Broadcast Your Own Video Channel
I was watching my favorite show on the television and it was just half over when I saw something which was definitely not a part of the show I was watching. My television screen gone blank for a couple of seconds and then what I saw was totally unbelievable for my eyes. It was my friend ‘Rahul...
Cisco Unified Computing System Fabric Interconnect Man-In-The-Middle Vulnerability
A vulnerability in the Fabric Interconnect of Cisco Unified Computing System could allow an unauthenticated, remote attacker to execute a man-in-the-middle attack. The vulnerability is due to improper verification of the server SSL certificate. An attacker could exploit this vulnerability by...